Cannot change user password when using AD with read and write permissions
Platform Notice: Data Center Only - This article only applies to Atlassian products on the Data Center platform.
Note that this KB was created for the Data Center version of the product. Data Center KBs for non-Data-Center-specific features may also work for Server versions of the product, however they have not been tested. Support for Server* products ended on February 15th 2024. If you are running a Server product, you can visit the Atlassian Server end of support announcement to review your migration options.
*Except Fisheye and Crucible
Symptoms
The following appears in the atlassian-crowd.log when you try to change an AD user password from Crowd.
1
2
3
4
Failed to update user password. Cause: CrowdRestException: org.springframework.ldap.OperationNotSupportedException: [LDAP: error code 53 - 0000001F: SvcErr: DSID-031A120C, problem 5003 (WILL_NOT_PERFORM), data 0
]; nested exception is javax.naming.OperationNotSupportedException: [LDAP: error code 53 - 0000001F: SvcErr: DSID-031A120C, problem 5003 (WILL_NOT_PERFORM), data 0
]; remaining name 'cn=XXXXXXX,cn=users,dc=example,dc=com'
-- referer: http://XXXXXXXXXXX/setuserpassword.action?username=XXXXXX | url: XXXXXX/dosetuserpassword.action | userName: admin | action: dosetuserpassword
This also happens with other Atlassian applications such as Jira, Confluence, and Crowd.
See also
CWD-2962 - Password Complexity Message for Remote Directories ( Open LDAP / AD etc )
CONFSERVER-34742 - Confluence to recognize LDAP Password Policy
See also this Jira document: LDAP Error Code 53
Known Causes
This is caused when you don't use SSL in your LDAP connection and AD enforces SSL connection.
There are password policies in the AD environment
Resolution
If the problem is caused by SSL, proceed on configuring the LDAP with SSL.
If the issue is caused due to password policies, contact the LDAP administrator for policy information.
Was this helpful?